Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Wx7tUk-CQRVhqpSaMFZOCiDuiAk.roa
File: Wx7tUk-CQRVhqpSaMFZOCiDuiAk.roa (raw, json)
Hash identifier: MdjtCxObvgVlE3dlyALDkhufeeZe3ajAl0DcVsIKxDc=
Subject key identifier: 5B:1E:ED:52:4F:82:41:15:61:AA:94:9A:30:56:4E:0A:20:EE:88:09
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 107D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Wx7tUk-CQRVhqpSaMFZOCiDuiAk.roa
Signing time: Sun 07 Feb 2021 12:45:49 +0000
ROA not before: Sun 07 Feb 2021 12:45:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4221 (0x107d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:45:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5B1EED524F82411561AA949A30564E0A20EE8809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2d:39:0b:90:2c:ef:ca:19:d0:6e:03:7b:3f:
0d:b0:15:d6:90:62:9a:bf:3e:ad:0c:c0:0b:33:9c:
9a:5c:bd:2c:24:c7:96:a4:c9:9d:02:99:c8:ea:bd:
95:17:3a:3d:73:5f:6d:cc:11:16:55:16:aa:06:9f:
1d:be:db:07:6f:fb:99:85:cd:d6:68:0a:59:a9:8e:
c8:58:db:dc:72:fa:3d:e0:b7:c3:80:f5:f0:e0:a4:
35:58:4f:2b:de:b4:5e:f6:25:b9:58:5f:71:de:9f:
59:93:6d:69:7a:3d:b2:38:04:28:56:0e:4b:ce:06:
e6:5d:84:ac:93:b5:f4:cd:a5:d9:99:2f:92:7c:af:
8b:74:ce:41:da:af:dd:b5:db:35:fb:f2:8a:b2:9c:
80:d2:21:71:cc:6a:24:68:8d:22:cb:16:98:53:db:
76:45:b7:ab:07:aa:71:c5:8a:58:3b:8e:11:34:c9:
2f:0c:6f:8d:68:61:39:eb:85:b1:27:24:22:c2:13:
a7:0f:5c:d8:56:30:06:84:1b:73:ac:af:df:d2:2b:
bc:2a:79:ae:b8:bb:c1:e4:c2:78:ca:2b:70:7c:0d:
39:f1:34:8e:10:b0:42:fa:b2:ab:66:d6:2d:45:31:
02:03:b9:5a:51:47:94:42:86:74:f0:38:d9:5e:f6:
cf:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:1E:ED:52:4F:82:41:15:61:AA:94:9A:30:56:4E:0A:20:EE:88:09
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Wx7tUk-CQRVhqpSaMFZOCiDuiAk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.134.0/24
Signature Algorithm: sha256WithRSAEncryption
57:6b:10:e8:62:41:e9:e9:e4:c9:dd:1e:f9:c2:dc:4b:73:2a:
b8:70:dd:99:94:9a:f2:17:e6:fa:17:66:3d:d0:47:44:2e:6e:
c6:c7:0d:36:fa:91:0a:ee:dd:b7:78:4c:7e:04:e8:ab:23:28:
67:9e:cb:b2:ad:07:cf:75:61:84:2f:d4:01:44:b7:65:39:55:
cb:1a:1e:2d:79:2c:38:76:9d:03:12:22:a8:0d:65:05:88:a1:
08:ce:0b:f4:d1:69:18:c8:56:7c:e6:e5:e6:f1:74:58:b5:b6:
3e:ba:b1:86:1f:89:fb:c8:5f:e4:9e:c1:06:ca:01:ad:c8:6f:
ea:1c:7f:f3:60:da:f9:f2:ee:0f:5f:51:99:35:22:59:ed:bf:
2a:cb:16:fc:ba:d8:1d:a9:cc:af:0a:b6:af:44:96:92:d5:80:
01:8d:d4:b5:09:97:10:5a:d5:b8:9f:7d:90:4d:3c:09:8b:2f:
dd:32:9c:23:70:45:38:f8:5b:ee:6b:13:8a:8b:bc:55:a0:30:
7e:35:1c:52:cb:da:f9:b9:14:e5:65:bf:88:6c:cf:27:3f:d9:
3a:bf:87:49:ae:97:6c:7e:93:11:61:e6:67:3a:ce:46:bf:bf:
3e:ac:db:be:50:67:d1:9a:6a:47:be:e0:99:80:c7:30:98:49:
8f:cd:06:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org